The Texas Department of Insurance recently disclosed a “data security event” that appears to have affected roughly 1.8 million people.
Texas Department of Insurance Exposed Data of 1.8 Million People
Europe Warned About Cyber Threat to Industrial Infrastructure
Malicious cyber actors pose a serious threat to Europe’s industrial infrastructure, with at least ten hacker groups known to target European organizations, according to a new report from industrial cybersecurity firm Dragos.
Symantec: Chinese APT Group Targeting Global MSPs
Malware hunters at Broadcom’s Symantec division have spotted signs that a long-running cyberespionage campaign linked to Chinese nation-state hackers is now going after managed service providers (MSPs) with a more global footprint.
44 Vulnerabilities Patched in Android With April 2022 Security Updates
The Android updates released by Google for April 2022 include patches for 44 vulnerabilities, including several rated “critical severity.”
As usual, the update was split into two parts, with the first of them arriving on devices as the “2022-04-01 security patch level” and addressing 14 security holes.
CashApp Says Ex-Employee Stole Customer Stock Trading Data
Financial services and stock trading platform CashApp on Tuesday fessed up to a data breach being blamed on a former employee who stole brokerage data, including portfolio values, from an unknown number of U.S. accounts.
Defenders Provided Tools and Information for Dealing With Spring4Shell
US Government Agencies Instructed to Patch Spring4Shell Vulnerability
Enterprise defenders have been provided information and tools to help them deal with Spring4Shell and potential attacks exploiting the vulnerability.
Yokogawa Patches Flaws Allowing Disruption, Manipulation of Physical Processes
Japanese automation giant Yokogawa recently patched a series of vulnerabilities in control system products that, according to researchers, can be exploited for the disruption or manipulation of physical processes.
Academics Devise Side-Channel Attack Targeting Multi-GPU Systems
A group of academic researchers has devised a side-channel attack targeting architectures that rely on multiple graphics processing units (GPUs) for resource-intensive computational operations.
TOTOLINK Routers, Other Device Exploits Added to Beastmode Botnet
The Mirai-based DDoS botnet known as Beastmode continues to expand its arsenal with at least five new exploits added over the last two months.
GitLab Patches Critical Account Takeover Vulnerability
DevOps platform GitLab has reset the passwords of some user accounts, after addressing a critical account takeover vulnerability.
According to the company, in GitLab Community Edition (CE) and Enterprise Edition (EE) versions prior to 14.7.7, 14.8.5, and 14.9.2, a hardcoded password was set when the account was registered using an OmniAuth provider.
